Cybernews

Wavlink routers and other IoT devices hit by React2Shell attacks

RondoDox botnet exploited React2Shell to compromise IoT devices and Next.js servers over a nine-month global campaign.
SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.
The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
HotHardware

Microsoft Uncovers Windows And Linux Botnet Used To DDoS Minecraft Servers

Earlier this week, Microsoft Defender for IoT researchers discovered malicious downloads that affect Windows and Linux devices. These downloads, among other propagation methods, ensnare local devices ...
Bleeping Computer

New JenX IoT DDoS Botnet Offered Part of Gaming Server Rental Scheme

The operators of a gaming server rental business are believed to have built an IoT DDoS botnet, which they are now offering as part of the server rental scheme. The prime and pretty obvious clue that ...
eWeek

Rustock Botnet Size Nearly Halved Since Server Takedown: Microsoft

eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. The Rustock botnet has been nearly halved in size and ...
ZDNet

Met Police: UK botnet command server taken out

An Eastern European command-and-control server for a botnet that targets UK banking customers and businesses has been taken down, according to a senior Metropolitan Police source. The server, which ...
Ars Technica

The bitcoin blockchain is helping keep a botnet from being taken down

When hackers corral infected computers into a botnet, they take special care to ensure they don’t lose control of the server that sends commands and updates to the compromised devices. The precautions ...
ZDNet

Two million stolen Facebook, Twitter, Yahoo, ADP passwords found on Pony Botnet server

Since the source code for the Pony Botnet Controller was leaked, Trustwave's SpiderLabs has been tracking the beast with much fascination. Interest turned to stunned surprise when the researchers ...
PC World

Botnet malware discovered on Healthcare.gov server

Thanks to a poor initial launch followed a few months later by the Heartbleed scare, Healthcare.gov has had its share of security problems. Now, we can add one more security snafu to the list. In ...
Network World

Botnet masters hide command and control server inside the Tor network

Security researchers from German antivirus vendor G Data Software have identified a botnet that is controlled by attackers from an Internet Relay Chat (IRC) server running as a hidden service inside ...